CVE-2012-1256

2012-02-22T08:54:03
ID CVE-2012-1256
Type cve
Reporter NVD
Modified 2012-03-20T23:54:00

Description

The single sign-on (SSO) implementation in EasyVista before 2010.1.1.89 allows remote attackers to bypass authentication via a modified url_account parameter, in conjunction with a valid login name in the SSPI_HEADER parameter, to index.php.